ISO 27001 - ISMS

Réussis tes devoirs et examens dès maintenant avec Quizwiz!

PS3

Conduct a risk assessment

PS2

Define ISMS Scope

PS4

Manage identified risks

ISO 27001 (process)

Process Steps: 1. Security Policy 2. Define ISMS Scope 3. Conduct a risk assessment 4. Manage identified risks 5. Select control objectives & controls for implementation 6. Statement of applicability

PS1

Security Policy

ISO 27001 (description)

Security standard that formally specifies an Information Security Management System (ISMS) that is intended to bring information security under explicit management control.

PS6

Statement of applicability

PS5

Select control objectives & controls for implementation

SoA (ISO 27001 - Statement of Applicability)

Defines the INFOSEC controls and organization's approach to meeting them or rationale(s) for omissions


Ensembles d'études connexes

NSG 325 Final Practice Questions

View Set

Combo with "Microeconomics Potter Chapter 11 Grade-It-Now" and 2 others

View Set

Regulation-Part 1, Regulation-Part 3, Regulation-Part 4-Part I

View Set

Chapter 1: What Is Logistics Management

View Set

Project management (The Business 2.0 Upper Intermediate SB p51-52 Unit 4.2)

View Set